{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T23:37:43.501","vulnerabilities":[{"cve":{"id":"CVE-2021-33648","sourceIdentifier":"securities@openeuler.org","published":"2022-06-27T17:15:08.670","lastModified":"2024-11-21T06:09:16.483","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers."},{"lang":"es","value":"Cuando es llevada a cabo la operación de inferencia de forma de los operadores Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup y Gather, si el tamaño de la forma de entrada es 0, será accedido a datos fuera de límites de la forma asignada desde los buffers del montón"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"securities@openeuler.org","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mindspore:mindspore:*:*:*:*:*:openeuler:*:*","versionStartIncluding":"1.1.0","versionEndExcluding":"1.3.0","matchCriteriaId":"03141B37-4ADF-41A1-BB98-B3EB2A0A929C"}]}]}],"references":[{"url":"https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md","source":"securities@openeuler.org","tags":["Patch","Third Party Advisory"]},{"url":"https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]}]}}]}